PHP cannot connect to mysql server
Stephen Smalley
sds at epoch.ncsc.mil
Fri Nov 12 13:29:12 UTC 2004
On Fri, 2004-11-12 at 07:19, Stephen Smalley wrote:
> You still need to add rules allowing httpd to talk to mysqld. Adding
> mysqld.te just created a separate domain for it (not sure about the log
> file problem). So you still need to add:
> allow httpd_t mysqld_var_run_t:sock_file rw_file_perms;
> can_unix_connect(httpd_t, mysqld_t)
> can_unix_send(httpd_t, mysqld_t)
Hmmm...unless it is actually httpd_php_t that is talking to mysqld, and
not the httpd_t process itself. In that case, those permissions are
already present in the apache.te file.
--
Stephen Smalley <sds at epoch.ncsc.mil>
National Security Agency
More information about the fedora-selinux-list
mailing list